Re^8: use of already eval()ed module (from string)

At this point i will set my goal as to be able to protect a password from a memory dump of a running script (re: password is specified by user at runtime, it is not stored in script but in script's runtime memory) by obfuscating it along your suggestions.

I searched on CPAN for something similar to C#'s SecureString but couldn't find any.

Comment on Re^8: use of already eval()ed module (from string)

Replies are listed 'Best First'.
Re^9: use of already eval()ed module (from string) by LanX (Saint) on Jan 15, 2019 at 11:34 UTC
Btw are you bundling your own Perl or how do you stop an attacker to just patch eval to dump the code? Cheers Rolf _{(addicted to the Perl Programming Language :) Wikisyntax for the Monastery FootballPerl is like chess, only without the dice}	[reply]
Re^10: use of already eval()ed module (from string) by bliako (Abbot) on Jan 15, 2019 at 12:08 UTC
I am not bundling own perl but that's a good point. I guess check-summing a sub, even if it is possible, it is easy to break as afoken notes and hell to maintain. Maybe instead of bundling a perl executable, I can only bundle `eval()` and use override::eval to override any other eval?	[reply] [d/l]
Re^11: use of already eval()ed module (from string) by LanX (Saint) on Jan 15, 2019 at 12:49 UTC
> I can only bundle eval() and use override::eval to override any other eval? No idea, as I already said I could come up with half a dozen approaches to tweak Perl to reveal your "secrets". Cheers Rolf _{(addicted to the Perl Programming Language :) Wikisyntax for the Monastery FootballPerl is like chess, only without the dice}	[reply]
Re^12: use of already eval()ed module (from string) by bliako (Abbot) on Jan 15, 2019 at 13:36 UTC
Re^13: use of already eval()ed module (from string) by LanX (Saint) on Jan 15, 2019 at 15:31 UTC
Some notes below your chosen depth have not been shown here